viruses in jpgs?

[AznMaverick]

is it possible to embed viruses into jpegs?

 

[z0mb13]

and WHY do u want to know??

 

[neonerd]

yes

 

[So]

yes, due to yet another bug found in windows. Any other OS is safe

 

[Shagga]

Originally posted by: So
yes, due to yet another bug found in windows. Any other OS is safe

Is that right? I didn't think you could...

 

[daveshel]

M$ released a patch for it last week.

 

[n0cmonkey]

Originally posted by: Shagga

Originally posted by: So
yes, due to yet another bug found in windows. Any other OS is safe

Is that right? I didn't think you could...

You don't pay much attention do you?

 

[numb]

I remember how this was an absurd idea only a few years ago.

 

[Shagga]

Originally posted by: n0cmonkey

Originally posted by: Shagga

Originally posted by: So
yes, due to yet another bug found in windows. Any other OS is safe

Is that right? I didn't think you could...

You don't pay much attention do you?

Obviously not. So yet another MS problem. The point being of course that in theory you cannot get a virus within a jpg file normally. It's just that MS enables you to do so!!

[edit]

The security hole is a buffer overflow that potentially allows an attacker to craft a special JPEG file that would take control of a victim's machine when the user views it through Internet Explorer, Outlook, Word, and other programs. The poisoned picture could be displayed on a website, sent in email, or circulated on a P2P network.
Click Here

Windows XP, Windows Server 2003 and Office XP are vulnerable. Older versions of Windows are also at risk if the user has installed any of a dozen other Microsoft applications that use the same flawed code, the company said in its advisory. The newly-released Windows XP Service Pack 2 does not contain the hole, but vulnerable versions of Office running atop it can still be attacked if left unpatched. Patches are available from Microsoft's website.

 

[Turkish]

Nobody is putting a gun on your head. If you dont like MS Windows, don't use it.

 

[n0cmonkey]

Originally posted by: Shagga

Originally posted by: n0cmonkey

Originally posted by: Shagga

Originally posted by: So
yes, due to yet another bug found in windows. Any other OS is safe

Is that right? I didn't think you could...

You don't pay much attention do you?

Obviously not. So yet another MS problem. The point being of course that in theory you cannot get a virus within a jpg file normally. It's just that MS enables you to do so!!

That and stupid users are the two ways to spread viruses.

 

[Shagga]

Originally posted by: The Boss
Nobody is putting a gun on your head. If you dont like MS Windows, don't use it.

Thank you for telling me that. I wasn't aware that I said I didn't like MS Windows. You assumed I didn't. Assumption is the mother of all f*** ups.

 

[n0cmonkey]

Originally posted by: The Boss
Nobody is putting a gun on your head. If you dont like MS Windows, don't use it.

:Q

 

[hans007]

i had heard this was a flaw with the way jpegs are decoded, and affects pretty much all systems that decode jpegs. its a buffer over flow problem.

the buffer over flows, with the right instructions placed to replace the return instruction pointer. theres been some talk of it at my work, some guys analyzing this stuff. pretty interesting. the code is out, for how to make your own jpeg that exploits this or something like that.

another day another bug.

 

[sandorski]

Originally posted by: hans007
i had heard this was a flaw with the way jpegs are decoded, and affects pretty much all systems that decode jpegs. its a buffer over flow problem.

the buffer over flows, with the right instructions placed to replace the return instruction pointer. theres been some talk of it at my work, some guys analyzing this stuff. pretty interesting. the code is out, for how to make your own jpeg that exploits this or something like that.

another day another bug.

Yes, it's another IE vulnerabilty, non MS browsers don't have this issue.

Dump IE all, it's a frickin seive.

 

[Fritzo]

An example of a virus in a jpg (don't worry, it's safe)

 

[Schadenfroh]

Originally posted by: Fritzo
An example of a virus in a jpg (don't worry, it's safe)

that with an electron microscope?

 

[simms]

STupid virus.. I'm sick because of that.

 

[hans007]

Originally posted by: sandorski

Originally posted by: hans007
i had heard this was a flaw with the way jpegs are decoded, and affects pretty much all systems that decode jpegs. its a buffer over flow problem.

the buffer over flows, with the right instructions placed to replace the return instruction pointer. theres been some talk of it at my work, some guys analyzing this stuff. pretty interesting. the code is out, for how to make your own jpeg that exploits this or something like that.

another day another bug.

Yes, it's another IE vulnerabilty, non MS browsers don't have this issue.

Dump IE all, it's a frickin seive.

i hope people dont dump IE. i need to have a job.